← Back

3ds

60 CVEs • 16 products

Products (16)

Click to collapse
Toggle
3dexperience Enovia
3dexperience_enovia
22 CVEs
3dexperience
11 CVEs
Delmia Apriso
delmia_apriso
7 CVEs
Solidworks Edrawings
solidworks_edrawings
3 CVEs
Catia
catia
2 CVEs
Enovia Live Collaboration
enovia_live_collaboration
2 CVEs
3dexperience Solidworks
3dexperience_solidworks
2 CVEs
Teamwork Cloud No Magic Release
teamwork_cloud_no_magic_release
2 CVEs
3dswymer
2 CVEs
Enovia Smarteam
enovia_smarteam
1 CVE
3d Xml Player
3d_xml_player
1 CVE
3dvia Composer
3dvia_composer
1 CVE
Push2rss 3ds
push2rss_3ds
1 CVE
Teamwork Cloud
teamwork_cloud
1 CVE
Biovia Materials Studio
biovia_materials_studio
1 CVE
Solidworks
solidworks
1 CVE

CVEs (60)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2025-10559
13ds
13dexperience
Apr 6, 2026
Mar 31, 2026
N/A· v4
9.1 CRITICAL· v3
N/A· v2
A Path Traversal vulnerability affecting Factory Resource Management in DELMIA Factory Resource Manager from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x allows an attacker to read or write files in sp...Show more
A Path Traversal vulnerability affecting Factory Resource Management in DELMIA Factory Resource Manager from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x allows an attacker to read or write files in specific directories on the server.Show less
CVE-2025-10553
13ds
13dexperience
Apr 6, 2026
Mar 31, 2026
N/A· v4
5.4 MEDIUM· v3
N/A· v2
A Stored Cross-site Scripting (XSS) vulnerability affecting Factory Resource Management in DELMIA Factory Resource Manager from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x allows an attacker to execut...Show more
A Stored Cross-site Scripting (XSS) vulnerability affecting Factory Resource Management in DELMIA Factory Resource Manager from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session.Show less
CVE-2025-10551
13ds
13dexperience
Apr 13, 2026
Mar 31, 2026
N/A· v4
5.4 MEDIUM· v3
N/A· v2
A Stored Cross-site Scripting (XSS) vulnerability affecting Document Management in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x allows an attacker to execut...Show more
A Stored Cross-site Scripting (XSS) vulnerability affecting Document Management in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session.Show less
CVE-2026-1335
13ds
1Solidworks Edrawings
Feb 26, 2026
Feb 16, 2026
N/A· v4
7.8 HIGH· v3
N/A· v2
An Out-Of-Bounds Write vulnerability affecting the EPRT file reading procedure in SOLIDWORKS eDrawings from Release SOLIDWORKS Desktop 2025 through Release SOLIDWORKS Desktop 2026 could allow an attacker to execute arbit...Show more
An Out-Of-Bounds Write vulnerability affecting the EPRT file reading procedure in SOLIDWORKS eDrawings from Release SOLIDWORKS Desktop 2025 through Release SOLIDWORKS Desktop 2026 could allow an attacker to execute arbitrary code while opening a specially crafted EPRT file.Show less
CVE-2026-1334
13ds
1Solidworks Edrawings
Feb 26, 2026
Feb 16, 2026
N/A· v4
7.8 HIGH· v3
N/A· v2
An Out-Of-Bounds Read vulnerability affecting the EPRT file reading procedure in SOLIDWORKS eDrawings from Release SOLIDWORKS Desktop 2025 through Release SOLIDWORKS Desktop 2026 could allow an attacker to execute arbitr...Show more
An Out-Of-Bounds Read vulnerability affecting the EPRT file reading procedure in SOLIDWORKS eDrawings from Release SOLIDWORKS Desktop 2025 through Release SOLIDWORKS Desktop 2026 could allow an attacker to execute arbitrary code while opening a specially crafted EPRT file.Show less
CVE-2026-1333
13ds
1Solidworks Edrawings
Feb 26, 2026
Feb 16, 2026
N/A· v4
7.8 HIGH· v3
N/A· v2
A Use of Uninitialized Variable vulnerability affecting the EPRT file reading procedure in SOLIDWORKS eDrawings from Release SOLIDWORKS Desktop 2025 through Release SOLIDWORKS Desktop 2026 could allow an attacker to exec...Show more
A Use of Uninitialized Variable vulnerability affecting the EPRT file reading procedure in SOLIDWORKS eDrawings from Release SOLIDWORKS Desktop 2025 through Release SOLIDWORKS Desktop 2026 could allow an attacker to execute arbitrary code while opening a specially crafted EPRT file.Show less
CVE-2025-12956
13ds
13dexperience Enovia
Jan 12, 2026
Dec 8, 2025
N/A· v4
5.4 MEDIUM· v3
N/A· v2
A reflected Cross-site Scripting (XSS) vulnerability affecting ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script c...Show more
A reflected Cross-site Scripting (XSS) vulnerability affecting ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session.Show less
CVE-2025-10554
13ds
13dexperience Enovia
Jan 12, 2026
Nov 24, 2025
N/A· v4
5.4 MEDIUM· v3
N/A· v2
A stored Cross-site Scripting (XSS) vulnerability affecting Requirements in ENOVIA Product Manager from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code...Show more
A stored Cross-site Scripting (XSS) vulnerability affecting Requirements in ENOVIA Product Manager from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session.Show less
CVE-2025-10558
13ds
13dswymer
Dec 4, 2025
Oct 13, 2025
N/A· v4
6.1 MEDIUM· v3
N/A· v2
A stored Cross-site Scripting (XSS) vulnerability affecting 3DSearch in 3DSwymer on Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session.
CVE-2025-10557
13ds
13dexperience Enovia
Oct 21, 2025
Oct 13, 2025
N/A· v4
5.4 MEDIUM· v3
N/A· v2
A stored Cross-site Scripting (XSS) vulnerability affecting Issue Management in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x allows an attacker to execute a...Show more
A stored Cross-site Scripting (XSS) vulnerability affecting Issue Management in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session.Show less
CVE-2025-10556
13ds
13dexperience Enovia
Oct 21, 2025
Oct 13, 2025
N/A· v4
5.4 MEDIUM· v3
N/A· v2
A stored Cross-site Scripting (XSS) vulnerability affecting Specification Management in ENOVIA Specification Manager from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbi...Show more
A stored Cross-site Scripting (XSS) vulnerability affecting Specification Management in ENOVIA Specification Manager from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session.Show less
CVE-2025-10552
13ds
13dswymer
Dec 4, 2025
Oct 13, 2025
N/A· v4
6.1 MEDIUM· v3
N/A· v2
A stored Cross-site Scripting (XSS) vulnerability affecting 3DSwym in 3DSwymer on Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session.
CVE-2025-6205
13ds
1Delmia Apriso
Oct 29, 2025
Aug 4, 2025
N/A· v4
9.1 CRITICAL· v3
N/A· v2
A missing authorization vulnerability affecting DELMIA Apriso from Release 2020 through Release 2025 could allow an attacker to gain privileged access to the application.
CVE-2025-6204
13ds
1Delmia Apriso
Oct 29, 2025
Aug 4, 2025
N/A· v4
8.0 HIGH· v3
N/A· v2
An Improper Control of Generation of Code (Code Injection) vulnerability affecting DELMIA Apriso from Release 2020 through Release 2025 could allow an attacker to execute arbitrary code.
CVE-2025-5086
13ds
1Delmia Apriso
Oct 29, 2025
Jun 2, 2025
N/A· v4
9.0 CRITICAL· v3
N/A· v2
A deserialization of untrusted data vulnerability affecting DELMIA Apriso from Release 2020 through Release 2025 could lead to a remote code execution.
CVE-2025-0833
13ds
13dexperience Enovia
Oct 22, 2025
Mar 17, 2025
N/A· v4
5.4 MEDIUM· v3
N/A· v2
A stored Cross-site Scripting (XSS) vulnerability affecting Route Management in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2024x allows an attacker to execute a...Show more
A stored Cross-site Scripting (XSS) vulnerability affecting Route Management in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session.Show less
CVE-2025-0832
13ds
13dexperience Enovia
Oct 22, 2025
Mar 17, 2025
N/A· v4
5.4 MEDIUM· v3
N/A· v2
A stored Cross-site Scripting (XSS) vulnerability affecting Project Gantt in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbi...Show more
A stored Cross-site Scripting (XSS) vulnerability affecting Project Gantt in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session.Show less
CVE-2025-0830
13ds
13dexperience Enovia
Oct 22, 2025
Mar 17, 2025
N/A· v4
5.4 MEDIUM· v3
N/A· v2
A stored Cross-site Scripting (XSS) vulnerability affecting Meeting Management in ENOVIA Change Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script...Show more
A stored Cross-site Scripting (XSS) vulnerability affecting Meeting Management in ENOVIA Change Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session.Show less
CVE-2025-0829
13ds
13dexperience Enovia
Oct 22, 2025
Mar 17, 2025
N/A· v4
5.4 MEDIUM· v3
N/A· v2
A stored Cross-site Scripting (XSS) vulnerability affecting 3D Markup in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrar...Show more
A stored Cross-site Scripting (XSS) vulnerability affecting 3D Markup in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session.Show less
CVE-2025-0828
13ds
13dexperience Enovia
Oct 22, 2025
Mar 17, 2025
N/A· v4
5.4 MEDIUM· v3
N/A· v2
A stored Cross-site Scripting (XSS) vulnerability affecting Engineering Release in ENOVIA Product Engineering Specialist from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute...Show more
A stored Cross-site Scripting (XSS) vulnerability affecting Engineering Release in ENOVIA Product Engineering Specialist from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session.Show less